all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Kairos: : Practical Intrusion Detection and Investigation using Whole-system Provenance. (arXiv:2308.05034v1 [cs.CR])

Add to bookmarks
Aug. 10, 2023, 1:11 a.m. | Zijun Cheng, Qiujian Lv, Jinyuan Liang, Yan Wang, Degang Sun, Thomas Pasquier, Xueyuan Han

cs.CR updates on arXiv.org arxiv.org

Provenance graphs are structured audit logs that describe the history of a
system's execution. Recent studies have explored a variety of techniques to
analyze provenance graphs for automated host intrusion detection, focusing
particularly on advanced persistent threats. Sifting through their design
documents, we identify four common dimensions that drive the development of
provenance-based intrusion detection systems (PIDSes): scope (can PIDSes detect
modern attacks that infiltrate across application boundaries?), attack
agnosticity (can PIDSes detect novel attacks without a priori knowledge of …

advanced advanced persistent threats audit automated design detection documents graphs history host identify intrusion intrusion detection investigation kairos logs persistent persistent threats provenance studies system techniques threats

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Proactive Detection of Voice Cloning with Localized Watermarking 2 days, 18 hours ago | arxiv.org
architecture arxiv audio authenticity +16
SecFormer: Towards Fast and Accurate Privacy-Preserving Inference for Large Language Models 2 days, 18 hours ago | arxiv.org
account arxiv bank cloud +22
NFT Wash Trading: Direct vs. Indirect Estimation 2 days, 18 hours ago | arxiv.org
arxiv binance crypto crypto exchanges +18
Robust Distortion-free Watermarks for Language Models 2 days, 18 hours ago | arxiv.org
arxiv budget changing compute +15
Backdoor Attack with Sparse and Invisible Trigger 2 days, 18 hours ago | arxiv.org
arxiv attack backdoor backdoor attack +4
Homomorphic Polynomial Public Key Cryptography for Quantum-secure Digital Signature 2 days, 18 hours ago | arxiv.org
arxiv cryptography cs.cr digital +17
Toward Unbiased Multiple-Target Fuzzing with Path Diversity 2 days, 18 hours ago | arxiv.org
arxiv cs.cr diversity energy +10
Transferable Availability Poisoning Attacks 2 days, 18 hours ago | arxiv.org
accuracy adversary arxiv attack +17
Uncovering the Limits of Machine Learning for Automatic Vulnerability Detection 2 days, 18 hours ago | arxiv.org
accuracy arxiv automatic can +17

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com